OPS235 Lab 1 - CentOS7

From CDOT Wiki
Revision as of 10:10, 24 March 2015 by Msaul (talk | contribs)
Jump to: navigation, search

Bold text

LAB PREPARATION

Purpose / Objectives of Lab 1

The c7host Linux server will run virtualization software to install and run 3 virtual machines (installed in lab2).

You need to install a Linux OS to be a host or "platform" to install and use other Linux VMs (Virtual Machines) during this course.

The Linux OS you will be installing in this lab will be a Host Machine (hostname: c7host) that will allow you to run Virtualization Software to create 3 separate virtual machines (to be performed in lab2). It is important to install this host machine correctly since other labs will depend on the stability of this host machine.


Main objectives:

  • Correctly install the CentOS 7 FULL INSTALL DVD (not LIVE DVD) on your removable hard disk.
  • Record installation characteristics of CentOS 7 FULL INSTALL in a chart (contained in lab2 logbook chart) to compare with other installation methods performed in lab2.
  • Verify correct settings prior to proceeding with host installation stages.
  • Obtain Linux server information after installation to create a software asset report for later access.
  • Disable Linux Kernel security enhancements to allow easier internal networking connections (to be reactivated in a later lab).
  • Observe that Bash Shell Scripts can automate routine tasks.


Required Materials / Lab Preparation

CentOS 7FULL INSTALL DVD
Removable Hard Disk Pack (SATA)
USB key
(for backups)
Lab Log Book
(labs 1 & 2)
Idea.png
Access to Instructions for Lab1
Since you will performing a full install on your computer, you cannot use that computer to simultaneously view instructions while you perform the full install. Here are some suggestions to make this process easier:
  • Printout Lab1 instructions at home prior to performing Lab1
  • Use a smart-phone, notebook, or netbook computer to view lab instructions (highly recommended)
  • If lab space availability is not an issue, use another computer termimal to view lab instructions while performing install
  • Follow step-by-step instructions from your OPS235 instructor (if demonstrated by instructor)

Online Linux Command Online Reference

Package Management

rpm

System Information

hostname
uname
ps
lsblk

Networking

ifconfig
netstat
route
nslookup

Miscellaneous

grep
wc

Idea.png
Online Linux Command Review
The following links will allow you to practice Linux commands that you learned from ULI101:
  • Bash Shell Command-line Editing
  • Common Linux Commands
  • Using a Text Editor
  • Simple Bash Shell Scripting

INVESTIGATION 1: CREATE HOST MACHINE (c7host)

Important.png
You're supposed to use this hard drive only for this course
But if you really need to use it for two courses, and the professor for the other (probably windows) course will allow it - ask your professor for help with partitioning.

Part 1: Start Installation

The Installation Summary screen provides flexibly when configuring to install on your computer.
  1. For reference:
  2. Insert your removable SATA hard disk into the drive tray.
  3. Set your computer's drive selector switch to external (a.k.a position #4).
  4. Power up the computer and insert the CentOS 7 Installation DVD into the DVD drive, then power-off computer.
  5. Restart the computer, and press the function key F10, press ENTER, and specify the device to boot (eg. DVD drive).
NOTE: Refer to the comparison chart in lab2 lab logbook, and fill in various installation information for c7host while you perform the installation (such as time it took to perform a full install, installation options, etc).
  1. Select the option Test this Media & Install Centos7. Your DVD will be checked for defects
  2. If the check is successful, you will be prompted for a language. In the first screen, select language English with subselection English-Canada and then click the Continue button on the bottom right-hand screen.
  3. The Install Summary should now appear. This screen allows the installer to customize their Centos7 system prior to installation.
  4. Configure the following installation settings from the Install Summary Screen:

    DATE & TIME:
    • Click on the Map to select Toronto area (you may also select from the drop-down menu section)
    • Click the DONE button at the top-right corner to finish and return to the Installation Summary screen.

    NETWORK & HOSTNAME:
    • Select the default Ethernet connection and click the button on the right-hand side to change the setting from OFF to ON.
    • At the bottom right-hand corner type the hostname: c7host (all lowercase letters)
    • Review your settings, then click the DONE button at the top-right corner to finish and return to the Installation Summary screen.

    SOFTWARE SELECTION:
    • Select the software packages labelled: Gnome Desktop
    • Click the DONE button at the top-right corner to finish and return to the Installation Summary screen.

  5. Although the Centos installtion program can provide suggestions on how to partition your hard disk, you will be customizing partitions for your hard disk. This custom partitioning is important since it will have consequences on future labs that you perform (especially lab2!).


Part 2: Custom Partitioning

  1. From the installation summary screen, click Installation Destination.
  2. In the installation destination screen, select the destination option: I will configure partitioning and then click Done.
  3. The manual partitioning screen should appear. Change the option New mount points will use the following partition scheme from LVM to Standard Partition (you will not be using LVM for your c7host machine).
  4. If you have used your hard disk for previous Linux (Centos) distributions, you should remove them. Click on the distribution, and for each partition, select the partition and click the remove button (minus sign) and confirm deletion.
  5. It is recommended to rescan the hard disks by clicking on the rescan button (loop symbol).
  6. Before you proceed with creating partitions, let's see the partitions that we need to create for our host computer:
    • Primary Partitions (ext4):
      • 20GB for / (i.e. "root")
      • 30GB for /home
      • 100GB for /var/lib/libvirt/images
    • Swap Partition:
      • 8GB (Note: "swap" must be selected from the drop down menu)

    NOTE: Remember that the sizes are recorded in MB (eg. 20 GB = 20000 MB) and you should multiply GB by a factor of 1024 to get the correct size.
    (eg. 20 GB x 1024 = 20480 MB)

  7. We will now create the root (/) partition. Click on the add button (plus) sign.
  8. In the Add a New Mount Point screen, enter / as the mount-point (either by typing or selecting from drop-down menu), and enter 20480 in for partition size and click Add Mount Point button.
  9. Repeat the same steps above for the /home partition and /var/lib/libvirt/images partition. You need to type the /var/lib/libvirt/images partition since it does not appear in the drop-down menu.
  10. Select each of the created partitions, and make certain that the file-system type is changed from xfs to ext4.
  11. Check that your partition settings are correct (you can ask your instructor or lab monitor to confirm), and then click Done to proceed.
  12. A Summary of Changes screen will appear to show the partitioning operations that will be created. Click the x button to proceed with the installation.




  1. If you get a warning with something like "This device may contain data" - it's probably your new hard drive and you can safely use it.
  2. Select Create Custom Layout, we don't want to use the default setup now. If you are using a hard drive that contains partitions from a previous course (previous version of Linux), delete all partitions prior to proceeding.
  3. On your drive you will need the following partitions. These may be primary partitions or logical drives.

    If you have more space than 250GB available - you can add the extra space in equal parts to /home and /var/lib/libvirt/images

  4. x
  5. Record briefly in your lab logbook what partitions you created of what size and what device names were assigned to them (/dev/sda1, etc.).
  6. After confirming partition settings, click next and select write changes to disk. The installation program will create and format the partitions.
Idea.png
Linux File System Types
Similar to other Operating Systems, it is good to know basic characteristics of file system types in Linux to select the best type for your machine:
  • xfs:   Newer filesystem (fast transfer rates for large files, Journaling)
  • ext4:   Newer filesystem supporting large files and Journaling
  • ext2:   Stable filesystem popular for databases (no journaling)
Carefully verify partition mount-names and sizes prior to proceeding with install. Check installation screenshots link for verification.

Part 3: Complete Installation

This screen indicates that installation is complete. You should remove the install DVD and confirm Centos7 boots from your removable hard drive.
  1. Accept the default settings to create the Bootloader and click next.
  2. Make certain that Desktop applications have been selected, and accept the default settings in the additional repositories section (at the bottom), then proceed. You may look at what's available if you choose "Customize now" but you don't need to customize the software installed at this point.
  3. Add in your lab logbook a brief description of the term "software repository" and what its major purpose serves (what you think it does). We will not add any existing repositories since we are not currently connected to the Internet. Therefore, we will customize the repositories later.
  4. Proceed with the installation. This may take some time. Record in your lab log-book the general steps in the installation process (displayed in the dialog box).
  5. When installation is complete, a screen will confirm completion, and will then ask the user to remove the DVD, and reboot the computer. Write in your lab log-book the time it took to perform this DVD install.
  6. Remove the Installation DVD, and click Reboot.
  7. Remember to press F10 when restarting the computer, and select the your SATA drive to boot from your removable hard drive.
  8. When the system starts, a one-time setup program will run to add regular user accounts, and to set date and time.
  9. Create a user account for yourself using the same user ID as your learn account, and create a suitable password.
  10. Set or accept the time and date default. Normally, you would want to enable Network Time Protocol, but since we will be experimenting with the networking turned off in later labs, leave it disabled.
  11. Accept all other defaults (you can ignore the Kdump feature). Finish the post-installation customization and then login to your computer account that you created.
  12. Proceed to Investigation 2

Answer Investigation 1 observations (all parts and questions) in your lab log book.

INVESTIGATION 2: OBTAINING HOST MACHINE SYSTEM INFORMATION

Important.png
Using Superuser Privilege
Throughout this course, you may need to execute commands using the privileges of the the administrative user (username "root", also called the "superuser"). To switch from your account to the root account, type the command: su

After switching user notice and make note of the change in your shell prompt. Also note the difference in output for the whoami andpwd commands.

Whenever this is required, make a note of it, and determine why superuser privilege is required.

When you are finished using the root account type exit to return to your previous account. Avoid using the superuser account unless absolutely necessary, because the superuser account has unlimited privilege and a typo can destroy your system.

In some documentation, you may see the command su - used in place of su. The dash argument causes su to go through the steps that would normally be performed when the root user logs in, including (1) running the startup scripts (such as/etc/profile and /root/.bash_profile and (2) changing to the root user's home directory (/root).

Note that the root user's home directory (/root) is not the same as the root directory of the system (/). It is also in a different directory than the rest of the home directories, which are typically in /home -- the reason for this is that /home is sometimes on a network filesystem shared by another server (as is the case on Matrix), and it's important that the system administrator be able to log in to the system even if the network is not operating normally.

Part 1: Obtaining Package Management / Package Information

Navigate through your Graphical CentOS system, locate and run a terminal program (in order to issue Linux commands). Issue and record the commands used and the output generated in each of the following steps:

  1. The name of the installation log file is /root/install.log -- It is an ASCII file (how can you be sure?) which can be viewed with the less command.
  2. You can make use of this file to determine how many packages have been installed: complete the following command to count the number of packages that are labelled "Installing" in the installation log file:
grep ________________ ________________ | wc -l
  1. Using the rpm command: you can also use the following commands to list all the installed packages, and the total number of packages installed:
rpm -q -a
rpm -q -a | wc -l
rpm -qa | wc -l
  1. The -q option means query, and the -a option means all (in other words, query all installed software packages). Did you get the same number of packages from the above two methods?
  2. Some of the files on your system were installed with the software packages, and some were created by system activity (for example, by creating your Learn account and by logging in). If you know the package name (from the install.log), you can list all the files that were installed from the package by using the following command:
rpm -q -l package_name
(where package_name represents the name of the application or package)
  1. This combines the -q (query) option with the -l (list filenames) option
  2. You can pipe the outupt through wc -l to count the number of lines:
rpm -ql package_name| wc -l
  1. Using what you learned in steps 3, 4, and 7, get a count of the total number of files installed by all of the software packages on your system.

Part2: Obtaining System and Network Information

  1. To find out the name that you have assigned to your Linux system, enter the command: hostname
  2. To find out the kernel version of your GNU/Linux workstation and the date it was created, enter the command: uname -rv
  3. To find out all the system processes running on your GNU/Linux workstation, enter the command: ps -ef
  4. To capture the list of all the system processes to a file called ps.lst, enter the command: ps -ef > ps.lst
Important.png
Pathname for USB Stick
The default mount location has been changed in linux distributions newer than CentOS. So while we will get /media/usb-device-name, in newer distributions you'll see /run/media/userloginid/usb-device-name
  1. Copy the installation log file /root/install.log and the file ps.lst to a USB memory key, or scp to your matrix account as a backup.
  2. View the section below to learn about and perform an update on your fresh CentOS install (you may have to find spare time to perform this install if you are running short on lab time). Do not proceed to Investigation 3 without performing an update.
  3. The CentOS software is updated frequently to add features, fix bugs, and upgrade security. Perform a system update to get the latest versions of the packages installed: Start the Firefox web browser, turn off popup window blocking (select Edit>Preferences, then select the Content tab and uncheck the box to Block Popups), then login to SeneNET. Open a terminal and type su to start a shell as root. Enter the command yum update This will download and install all of the packages that have been updated since the installation DVD image was created. If you complete this command at Seneca it should run quite fast as Seneca College hosts a CentOS Repository mirror (a copy of all of the current CentOS packages, on a local web server).


Idea.png
Rusty Issuing Linux commands since ULI101?
To be an effective Linux administrator, you need to become comfortable on issuing Linux commands in a shell, and use resources to quickly learn how to properly formulate Linux commands...

You can run the following online tutorials to practice (refresh) issuing Linux commands. These tutorials were designed for another course called "OPS435", but you can still use them for practice. Simply open a shell, SSH into the Matrix server (eg. ssh yourusername@matrix.senecac.on.ca) and run the following 4 tutorials (you can copy and paste these separate pathnames and run like a program):

/home/ops435/tutorials/tutorial1
/home/ops435/tutorials/tutorial2
/home/ops435/tutorials/tutorial3
/home/ops435/tutorials/vi-tutorial


You can also refer to the section above called Linux Command Online Reference to see how use use the following Linux commands to obtain the required information.

Answer the Investigation 2 observations / questions in your lab log book.


  1. Your system may not be automatically connected to Seneca's network. Locate the network icon (on top right-hand panel). Click on that icon, and select

system eth0

  1. Open a web-browser and log into Seneca's wired network. You will need to perform this set every time you start a new session with your computer to perform future labs.
  2. Open a shell terminal.
  3. To check the network configuration settings obtained from the DHCP server, run the following commands, describing the output in your log book:
    • ifconfig
    • route -n
    • nslookup (at the > prompt, enter the word "server" (do not type the quotes) and record the output. Type exit to leave nslookup).
  4. Find the following information in the output of the above commands:
    • MAC address of the ethernet network interface
    • Subnet mask
    • The IP address assigned to you by the DHCP server
    • The default gateway
    • The DNS nameserver

Answer the Investigation 3 observations / questions in your lab log book.

INVESTIGATION 3: LOOKING AHEAD

Part 1: Disable SELinux

Important.png
SELinux
SELinux stands for Security-Enhanced Linux. It is a component that helps to better secure the system to protect against intrusion (hackers). SELinux is enabled upon the default install of CentOS. SELinux can be a good thing, if you take care of it and know how it works. For this course it is strongly recommended that you disable SELinux by default because we won't have the time to reconfigure it every time the labs make it necessary.
  1. Disabling SELinux is quite simple, just edit the file /etc/selinux/config and set SELINUX to disabled.

Part 2: Automating Routine Tasks (Shell Scripting)

COMPLETING THE LAB / INSTRUCTOR SIGN-OFF

Students should be prepared with all required commands (system information) displayed in a terminal (or multiple terminals) prior to calling the instructor for signoff.

Arrange evidence (command output) for each of these items on your screen, then ask your instructor to review them and sign off on the lab's completion:

  • Installed package count
  • Output of lsblk command showing correct partition names and sizes
  • Correct IP address and MAC address
  • Default route (gateway)
  • DNS name server IP Address
  • lab1 notes and first column of Comparison Chart in lab2.

ADDITIONAL PRACTICE

  1. How many packages were installed?
  2. How many files (correct to the nearest hundred) were installed?
  3. How many users were created automatically on your system (do not count your learn account)?
  4. What is your learn account's UID and GID?
  5. What is your learn account's home directory?
  6. What is the home directory for the user "root"?
  7. How do you determine the host name of your GNU/Linux workstation?
  8. What command can display the NIC's MAC address?